We performed a comparison between Snyk and Trend Micro Cloud One based on our users’ reviews in five categories. After reading all of the collected data, you can find our conclusion below.
Features: Snyk is highly regarded for its developer-friendly approach, seamless integration, and ability to automatically generate pull requests. It particularly shines in software composition analysis and supports container usage. Trend Micro Cloud One is praised for its extensive range of features, strong vulnerability protection, and real-time server security. Snyk users say the solution could improve in terms of compatibility and reporting while expanding its vulnerability database. Trend Micro Cloud One should focus on providing equal support for AWS and Azure and enhance its automation capabilities.
Service and Support: Reviewers say Snyk should overhaul how it organizes and prioritizes requests. Trend Micro Cloud One was commended for its exceptional and easily accessible technical support. Users value the expertise and knowledge of the Trend Micro team.
Ease of Deployment: Most Snyk users found the setup process uncomplicated, but some needed professional guidance. Difficulties arose when collaborating with multiple developers and integrating Snyk with specific tools. Some found Trend Micro Cloud One easy to set up, while others found it complicated. It could pose challenges for individuals without a background in IT or information security. The deployment time varied depending on the complexity of the system.
Pricing: Snyk has a higher setup cost than other solutions, while Trend Micro Cloud One falls in the middle. Snyk offers a free open-source version, whereas additional services for Trend Micro Cloud One come at an added cost. The view of Trend Micro Cloud One's pricing is generally positive.
ROI: Snyk provides a budget-friendly option for detecting vulnerabilities in open-source software, which may offset yearly subscription costs. Trend Micro Cloud One offers a versatile return on investment and smooth integration without any reported issues.
Comparison Results: Snyk emerges as the favored choice compared to Trend Micro Cloud One. Users like Snyk's developer-oriented approach and valuable functionalities like automatic pull requests and software composition analysis. They also highlight its compatibility with containers and accurate identification of security vulnerabilities. Trend Micro Cloud One users want more automation and a more comprehensive feature set.
"I think all the standard features are quite useful when it comes to software component scanning, but I also like the new features they're coming out with, such as container scanning, secrets scanning, and static analysis with SAST."
"The most valuable features include enriched information around the vulnerabilities for better triaging, in terms of the vulnerability layer origin and vulnerability tree."
"The most valuable feature of Snyk is the software composition analysis."
"The most valuable features are their GitLab and JIRA integrations. The GitLab integration lets us pull projects in pretty easily, so that it's pretty minimal for developers to get it set up. Using the JIRA integration, it's also pretty easy to get the information that is generated, as a result of that GitLab integration, back to our teams in a non-intrusive way and in a workflow that we are already using."
"Snyk performs software composition analysis (SCA) similar to other expensive tools."
"The solution's Open Source feature gives us notifications and suggestions regarding how to address vulnerabilities."
"It has a nice dashboard where I can see all the vulnerabilities and risks that they provided. I can also see the category of any risk, such as medium, high, and low. They provide the input priority-wise. The team can target the highest one first, and then they can go to medium and low ones."
"It is one of the best product out there to help developers find and fix vulnerabilities quickly. When we talk about the third-party software vulnerability piece and potentially security issues, it takes the load off the user or developer. They even provide automitigation strategies and an auto-fix feature, which seem to have been adopted pretty well."
"It has the best EDR functionality for cloud and typical endpoints."
"The the most valuable feature is the scanning engine. It does not impact server performance. It's very lightweight."
"The security is good."
"The tech support is excellent. They really know their products. They also know a lot of about the integrations between different solutions."
"I really like Trend Vision One - Cloud Security's dashboard."
"The perfect package for all security platforms, providing more than any other endpoint solution."
"The product helps us understand our environment better."
"The stability is quite good."
"The product is very expensive."
"The tool should provide more flexibility and guidance to help us fix the top vulnerabilities before we go into production."
"The documentation sometimes is not relevant. It does not cover the latest updates, scanning, and configurations. The documentation for some things is wrong and does not cover some configuration scannings for the multiple project settings."
"We would like to have upfront knowledge on how easy it should be to just pull in an upgraded dependency, e.g., even introduce full automation for dependencies supposed to have no impact on the business side of things. Therefore, we would like some output when you get the report with the dependencies. We want to get additional information on the expected impact of the business code that is using the dependency with the newer version. This probably won't be easy to add, but it would be helpful."
"It would be helpful if we get a recommendation while doing the scan about the necessary things we need to implement after identifying the vulnerabilities."
"We have seen cases where tools didn't find or recognize certain dependencies. These are known issues, to some extent, due to the complexity in the language or stack that you using. There are some certain circumstances where the tool isn't actually finding what it's supposed to be finding, then it could be misleading."
"We've also had technical issues with blocking newly introduced vulnerabilities in PRs and that was creating a lot of extra work for developers in trying to close and reopen the PR to get rid of some areas. We ended up having to disable that feature altogether because it wasn't really working for us and it was actually slowing down developer velocity."
"The log export function could be easier when shipping logs to other platforms such as Splunk."
"One area for improvement in Trend Vision One - Cloud Security is marketing; in particular, Trend Vision should update the marketing documentation. The information needs to be more comprehensive."
"The dashboard should be a bit more intuitive."
"Securing S3 using Trend Vision One - Cloud Security can cost too much. Trend Vision One - Cloud Security has a tool that requires lots of privileges. From my understanding, it's only for static application testing, so they need to add dynamic application testing, and there should be more collaboration with the application testing tools on the market. We have not used this product, and I don't know if they plan to decommission it or something. They should focus on application security because this tool's unique feature is multi-cloud support. However, they should improve integration with tools for these kinds of use cases, especially application security and dynamic scanning. For example, I would like it to support Dell SecureOps. I'd also like to see some enhancements to API gateway security."
"There are also some loopholes because it's a new product that they have recently migrated to the cloud. We do see some issues with the policies we have assigned when it comes to a particular account. There are some issues with system support, such as a particular server kernel version that is not supported."
"Trend Vision One - Cloud Security seems to have a preference for AWS Cloud over Azure and would be improved by focusing equally on both."
"Documentation on cloud architecture and job architecture would be helpful."
"The licensing model could be improved. To gain full coverage, you need to spend more to buy subscriptions for each kind of service they offer. It will start to be pricey if you want full coverage."
"The pricing can get high."
More Trend Vision One - Cloud Security Pricing and Cost Advice →
Snyk is ranked 4th in Application Security Tools with 41 reviews while Trend Vision One - Cloud Security is ranked 13th in Application Security Tools with 17 reviews. Snyk is rated 8.2, while Trend Vision One - Cloud Security is rated 8.6. The top reviewer of Snyk writes "Performs software composition analysis (SCA) similar to other expensive tools". On the other hand, the top reviewer of Trend Vision One - Cloud Security writes "We can quickly deploy cloud conformity, provides good visibility, and control". Snyk is most compared with SonarQube, Black Duck, GitHub Advanced Security, Fortify Static Code Analyzer and Veracode, whereas Trend Vision One - Cloud Security is most compared with Microsoft Defender for Cloud, AWS GuardDuty, Check Point Harmony Email & Collaboration, Prisma Cloud by Palo Alto Networks and AWS Security Hub. See our Snyk vs. Trend Vision One - Cloud Security report.
See our list of best Application Security Tools vendors and best Container Security vendors.
We monitor all Application Security Tools reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
